Search Results - JavaScript code injection

Automated Discovery of JavaScript Code Injection Attacks in PHP Web Applications by Gupta, Shashank, Gupta, B.B.

“…This paper discussed some of the performance issues in the existing defensive solutions of Java Script injection attacks (e.g…”
Get full text

Cross-Site Scripting (XSS) attacks and defense mechanisms: classification and state-of-the-art by Gupta, Shashank, Gupta, B. B.

“…Nowadays, web applications are becoming one of the standard platforms for representing data and service releases over the World Wide Web. Since web…”
Get full text

Server Side Code JavaScript Injection in Modern Node.js Applications by Παραρά, Μαρία, Parara, Maria

“… This thesis aims to study scenarios through which a Node.js application can be exposed to Server Side JavaScript Injection (SSJI…”
Get full text

XSS-SAFE: A Server-Side Approach to Detect and Mitigate Cross-Site Scripting (XSS) Attacks in JavaScript Code by Gupta, Shashank, Gupta, B. B.

“… Cross-site scripting (XSS) attacks are presently the most exploited security problems in modern Web applications and activated by an attacker to utilize the vulnerabilities of the poorly written Web application source code…”
Get full text

Hunting for DOM-Based XSS vulnerabilities in mobile cloud-based online social network by Gupta, Shashank, Gupta, B.B., Chaudhary, Pooja

“… The online mode detects the injection of untrusted script content in the DOM tree generated at runtime…”
Get full text

XSS-secure as a service for the platforms of online social network-based multimedia web applications in cloud by Gupta, Shashank, Gupta, B. B.

“… It operates in two modes: training and detection mode. The former mode sanitizes the extracted untrusted variables of JavaScript code in a context-aware manner…”
Get full text

CSSXC: Context-sensitive Sanitization Framework for Web Applications against XSS Vulnerabilities in Cloud Environments by Gupta, Shashank, Gupta, B.B.

“… It discovers all the hidden injection points in HTML5-based web applications deployed on the platforms of cloud and sanitizes the XSS attack payloads injected in such points in a context sensitive manner…”
Get full text

SFC: A Three Layer Smart Phone-Fag-Cloud Framework for Defending Against JavaScript Code Injection Vulnerabilities on OSN by Gupta, Shashank, Gugta, B. B.

“…) that senses and avoids an execution of JavaScript code injection vulnerabilities on Online Social Network (OSN…”
Get full text

Injecting Comments to Detect JavaScript Code Injection Attacks by Shahriar, H., Zulkernine, M.

“…Most web programs are vulnerable to cross site scripting (XSS) that can be exploited by injecting JavaScript code…”
Get full text

Evaluation and monitoring of XSS defensive solutions: a survey, open research issues and future directions by Gupta, Shashank, Gupta, B. B.

“…XSS is well-thought-out to be an industry-wide problem that is affecting the diverse contemporary web platforms. The collection of most recent web application…”
Get full text

NodeXP: NOde.js server-side JavaScript injection vulnerability DEtection and eXPloitation by Ntantogian, Christoforos, Bountakas, Panagiotis, Antonaropoulos, Dimitris, Patsakis, Constantinos, Xenakis, Christos

“… This specific kind of injection attack stands out because it has the potential to compromise servers, where the JavaScript code is executed…”
Get full text

Stubbifier: debloating dynamic server-side JavaScript applications by Turcotte, Alexi, Arteca, Ellen, Mishra, Ashish, Alimadadi, Saba, Tip, Frank

“… Eliminating this unused functionality from distributions is desirable, but the sound analysis required to find unused code is difficult due to JavaScript…”
Get full text

Script late injection: a framework to introduce JavaScript into web pages by Prakash, Bhanu, Sampangiramaiah, Sandhya

“… In order to achieve this, proxy servers inject appropriate JavaScript code into the responses they proxy…”
Get full text

Reducing Web Attack Surface: Mitigating Social Engineering and Code Injection Threats by Yang, Zheng

“… These include not only technical exploits like code injection attacks, but also social engineering threats that inject misleading content, invisible overlays, or malicious scripts to deceive users…”
Get full text

CoinDef: A Comprehensive Code Injection Defense for the Electron Framework by Yang, Zheng, Chung, Simon P., Chen, Jizhou, Zhang, Runze, Saltaformaggio, Brendan, Lee, Wenke

“…) with execution context. Coindef operates within the JavaScript engine, providing rapid, tamper-proof, and comprehensive mitigation against code injection attacks to Electron applications…”
Get full text

Data Extraction, Attacks and Protection on Android Clipboard by Tiwari, Pradeep Kumar

“… In this paper, we evaluated and implemented common techniques used by attackers, such as JavaScript code injection, social media application based phishing attacks targeting data integrity, XSS…”
Get full text

A Protection Mechanism against Malicious HTML and JavaScript Code in Vulnerable Web Applications by Chai, Chuansen, Zhao, Xu, Wang, Qingxian, Yan, Xuexiong, Liu, Shukai, Sun, Yajing

“…The high-profile attacks of malicious HTML and JavaScript code have seen a dramatic increase in both awareness and exploitation in recent years…”
Get full text

Boostlet.Js: Medical Image Processing Plugins for the Web via Javascript Injection by Gaibor, Edward, Varade, Shruti, Deshmukh, Rohini, Meyer, Tim, Geshvadi, Mahsa, Kim, SangHyuk, Narayanappa, Vidhya Sree, Haehn, Daniel

“…? Our Boostlet.js library addresses this challenge by providing an open-source, JavaScript-based web framework to enable additional image processing functionalities…”
Get full text

Cross-site scripting (XSS) worms in Online Social Network (OSN): Taxonomy and defensive mechanisms by Chaudhary, Pooja, Gupta, B. B., Gupta, Shashank

“…The propagation of XSS worms on the social networking sites like Twitter, LinkedIn, Facebook, etc. has observed exponential growth in modern era of Web 2.0…”
Get full text

CODDLE: COde-injection Detection with Deep LEarning by Abaimov, Stanislav, Bianchi, Giuseppe

“…Code Injection attacks such as SQL Injection and Cross-Site Scripting (XSS) are among the major threats for today's web applications and systems…”
Get full text